feat: initialize the action

davidB · davidB · commit ab6c0e5d23f9 · 2025-08-28T17:53:17.000+02:00
- start the README
- rapp the container version of `cdviz-collector` for a maximum of porta
bility
diff --git a/README.md b/README.md
@@ -0,0 +1,201 @@
+# Send CDEvents GitHub Action
+
+A GitHub Action that sends CDEvents using the `cdviz-collector send` subcommand.
+
+## Usage
+
+### Basic Example
+
+```yaml
+name: Send CDEvent
+on:
+  push:
+    branches: [main]
+
+jobs:
+  send-event:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Send CDEvent
+        uses: cdviz-dev/send-cdevents@v1
+        with:
+          data: '{"type": "dev.cdevents.build.started.0.1.1", "source": "github-action"}'
+          url: "https://your-webhook-endpoint.com/cdevents"
+```
+
+### Advanced Example with Headers
+
+```yaml
+name: Send CDEvent with Authentication
+on:
+  push:
+    branches: [main]
+
+jobs:
+  send-event:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Send CDEvent
+        uses: cdviz-dev/send-cdevents@v1
+        with:
+          data: '{"type": "dev.cdevents.build.started.0.1.1", "source": "github-action"}'
+          url: "https://your-webhook-endpoint.com/cdevents"
+          headers: |
+            Authorization: Bearer ${{ secrets.API_TOKEN }}
+            X-Source: GitHub
+```
+
+### Using Configuration Content
+
+```yaml
+name: Send CDEvent with Config
+on:
+  push:
+    branches: [main]
+
+jobs:
+  send-event:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Send CDEvent with HMAC signature
+        uses: cdviz-dev/send-cdevents@v1
+        with:
+          data: '{"type": "dev.cdevents.build.started.0.1.1", "source": "github-action"}'
+          url: "https://your-webhook-endpoint.com/cdevents"
+          config: |
+            [sinks.http.headers.x-signature-256]
+            type = "signature"
+            token = "${{ secrets.WEBHOOK_SECRET }}"
+            algorithm = "sha256"
+            prefix = "sha256="
+```
+
+### Reading from File
+
+```yaml
+name: Send CDEvent from File
+on:
+  push:
+    branches: [main]
+
+jobs:
+  send-event:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+      
+      - name: Send CDEvent
+        uses: cdviz-dev/send-cdevents@v1
+        with:
+          data: '@.github/cdevents/build-started.json'
+          url: "https://your-webhook-endpoint.com/cdevents"
+```
+
+## Inputs
+
+| Input | Description | Required | Default |
+|-------|-------------|----------|---------|
+| `data` | JSON data to send. Can be direct JSON string, file path (@file.json), or stdin (@-) | Yes | - |
+| `url` | HTTP URL to send the data to. When specified, automatically enables the HTTP sink | No | - |
+| `config` | TOML configuration content for advanced sink settings | No | - |
+| `directory` | Working directory for relative paths | No | - |
+| `headers` | Additional HTTP headers for the request (one per line, format: "Header-Name: value") | No | - |
+| `additional-args` | Additional arguments to pass to the cdviz-collector send command | No | - |
+| `version` | Version/tag of the cdviz-collector container to use | No | `latest` |
+
+## Data Input Formats
+
+### Direct JSON String
+```yaml
+with:
+  data: '{"type": "dev.cdevents.build.started.0.1.1", "source": "github-action"}'
+```
+
+### From File
+```yaml
+with:
+  data: '@path/to/event.json'
+```
+
+### From Stdin (for piped data)
+```yaml
+with:
+  data: '@-'
+```
+
+## Configuration Content Example
+
+You can provide TOML configuration content directly in the action:
+
+```yaml
+config: |
+  [sinks.http.headers.x-signature-256]
+  type = "signature"
+  token = "${{ secrets.WEBHOOK_SECRET }}"
+  algorithm = "sha256"
+  prefix = "sha256="
+  
+  [sinks.http.headers.x-custom-header]
+  type = "static"
+  value = "custom-value"
+```
+
+> **⚠️ Security Note**: Always use GitHub secrets (`${{ secrets.SECRET_NAME }}`) for sensitive information like API keys, tokens, and webhook secrets. Never hardcode sensitive values directly in your workflow files. The action creates a temporary config file with restrictive permissions in the workspace and automatically cleans it up after execution, even if the action fails.
+
+## Examples
+
+### Build Event
+```yaml
+- name: Send Build Started Event
+  uses: cdviz-dev/send-cdevents@v1
+  with:
+    data: |
+      {
+        "context": {
+          "version": "0.3.0",
+          "id": "build-${{ github.run_id }}",
+          "source": "github-actions",
+          "type": "dev.cdevents.build.started.0.1.1",
+          "timestamp": "${{ steps.timestamp.outputs.timestamp }}"
+        },
+        "subject": {
+          "id": "${{ github.repository }}",
+          "source": "${{ github.server_url }}/${{ github.repository }}"
+        }
+      }
+    url: ${{ secrets.CDEVENTS_WEBHOOK_URL }}
+```
+
+### Test Event
+```yaml
+- name: Send Test Started Event
+  uses: cdviz-dev/send-cdevents@v1
+  with:
+    data: |
+      {
+        "context": {
+          "version": "0.3.0",
+          "id": "test-${{ github.run_id }}",
+          "source": "github-actions",
+          "type": "dev.cdevents.test.started.0.1.0",
+          "timestamp": "${{ steps.timestamp.outputs.timestamp }}"
+        },
+        "subject": {
+          "id": "${{ github.repository }}",
+          "source": "${{ github.server_url }}/${{ github.repository }}",
+          "testCase": {
+            "id": "${{ matrix.test-suite }}",
+            "name": "${{ matrix.test-suite }}"
+          }
+        }
+      }
+    url: ${{ secrets.CDEVENTS_WEBHOOK_URL }}
+    headers: |
+      Authorization: Bearer ${{ secrets.API_TOKEN }}
+      X-GitHub-Run-ID: ${{ github.run_id }}
+```
+
+## License
+
+This project is licensed under the same license as the cdviz-collector project.
diff --git a/action.yml b/action.yml
@@ -0,0 +1,95 @@
+name: 'Send CDEvents'
+description: 'Send CDEvents using cdviz-collector send subcommand'
+author: 'cdviz-dev'
+
+branding:
+  icon: 'send'
+  color: 'blue'
+
+inputs:
+  data:
+    description: 'JSON data to send to the sink. Can be direct JSON string, file path (@file.json), or stdin (@-)'
+    required: true
+  url:
+    description: 'HTTP URL to send the data to. When specified, automatically enables the HTTP sink'
+    required: false
+  config:
+    description: 'TOML configuration content for advanced sink settings'
+    required: false
+  directory:
+    description: 'Working directory for relative paths'
+    required: false
+  headers:
+    description: 'Additional HTTP headers for the request (one per line, format: "Header-Name: value")'
+    required: false
+  additional-args:
+    description: 'Additional arguments to pass to the cdviz-collector send command'
+    required: false
+  version:
+    description: 'Version/tag of the cdviz-collector container to use'
+    required: false
+    default: 'latest'
+
+runs:
+  using: 'composite'
+  steps:
+    - name: 'Create secure config file'
+      shell: bash
+      if: ${{ inputs.config != '' }}
+      run: |
+        # Create config file with restrictive permissions
+        umask 077
+        cat > .cdviz-config-${{ github.run_id }}.toml << 'EOF'
+        ${{ inputs.config }}
+        EOF
+        
+    - name: 'Build command arguments'
+      shell: bash
+      id: args
+      run: |
+        ARGS="send --data '${{ inputs.data }}'"
+        
+        if [ -n "${{ inputs.url }}" ]; then
+          ARGS="$ARGS --url '${{ inputs.url }}'"
+        fi
+        
+        if [ -n "${{ inputs.config }}" ]; then
+          ARGS="$ARGS --config '.cdviz-config-${{ github.run_id }}.toml'"
+        fi
+        
+        if [ -n "${{ inputs.directory }}" ]; then
+          ARGS="$ARGS --directory '${{ inputs.directory }}'"
+        fi
+        
+        if [ -n "${{ inputs.headers }}" ]; then
+          while IFS= read -r header; do
+            if [ -n "$header" ]; then
+              ARGS="$ARGS --header '$header'"
+            fi
+          done <<< '${{ inputs.headers }}'
+        fi
+        
+        if [ -n "${{ inputs.additional-args }}" ]; then
+          ARGS="$ARGS ${{ inputs.additional-args }}"
+        fi
+        
+        echo "args=$ARGS" >> $GITHUB_OUTPUT
+        echo "Command to execute: cdviz-collector $ARGS"
+    
+    - name: 'Run cdviz-collector'
+      shell: bash
+      run: |
+        docker run --rm \
+          -v "$PWD:/workspace" \
+          -w /workspace \
+          ghcr.io/cdviz-dev/cdviz-collector:${{ inputs.version }} \
+          ${{ steps.args.outputs.args }}
+    
+    - name: 'Clean up config file'
+      shell: bash
+      if: ${{ always() && inputs.config != '' }}
+      run: |
+        if [ -f ".cdviz-config-${{ github.run_id }}.toml" ]; then
+          rm -f ".cdviz-config-${{ github.run_id }}.toml"
+          echo "Cleaned up temporary config file"
+        fi
